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1 CLAIMS 

2 

3 1 . Process for creating and managing pairs of asymmetrioal cryptographic keys and 

4 associated certificates, each pair of keys being intended for a subject Ananaged by a computer 

5 system (1), characterized in that it consists of: / 

6 • searching in storage means (7) for at least one subject for which a pair of asymmetric 

7 keys and an associated certificate must be created; / 

8 • creating at least one individual request for creating and dertifying a pair of asymmetric 
£-9 keys for said subject; / 

"IjO • transmitting a request corresponding to said individual creation and certification request 

Wl to a key generating center (8), which issues a pair of asymmetric keys in accordance with 

said request; / 

35 • creating at least one individual request for certifying the public key created for said 

44 subject; / 

Ap • transmitting a request corresponding to said individual certification request to a 

fl^ certification authority (12), which issues a certificate in accordance with said request. 

^1 2. Process according to claim 1 , characterized in that a pair of keys must be created 

2 for a given subject when said subject lacks a pair of Keys and a corresponding individual creation 

3 and certification request, or when a pair of keys has/been requested for said subject, or when the 

4 certificate of a pair of keys for said subject intended for an identical use has been revoked and a 

5 new pair of keys has been requested. / 

1 3. Process according to either of claims 1 and 2, characterized in that it is executed 

2 periodically. / 

1 4. Process according to any of claims 1 through 3, characterized in that it creates 

2 each individual request from a corresponding multiple creation and certification request stored in 

3 the storage means (7) relative to a set of subjects belonging to a preset list or to a set of subjects 
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4 defined by predetermined criteria, as well as to model pairs of keys ^id associated model 

5 certificates for the set in question. / 

1 5. Process according to claim 4, characterized in that it consists of searching in each 

2 of the multiple creation and certification requests of the system^for all of the subjects in a 

3 condition such that a pair of keys must be created. ^ 

1 6. Process for creating and managing certificates for pairs of asymmetrical 

cryptographic keys, each certificate being intended for a pair of asymmetrical cryptographic keys 

i3 for a subject managed by a computer system (1), charact^zed in that it consists of: 

i: / 

y4 • searching in storage means (7) for at least one pair of asymmetric keys for the public key 

gf for which a certificate must be created; / 

~B • creating at least one individual request for certifying the public key; 

= 7 • transmitting a request corresponding to said individual certification request to a 

b8 certification authority (12), which issues a certificate in accordance with said request. 

i / e> 

^ij 7. Process according to claim 6, characterized in that a certificate must be created for 

"2 a given subject when said subject lacks a certificate and an individual certification request, or 

3 when a certificate has been requested for said subject, or when the certificate of a pair of . keys for 

4 said subject expires, or when the certificate of a pair of keys has been revoked. 

1 8. Process according to either ouclaims 6 and 7, characterized in that it is executed 

2 periodically. / 

1 9. Process according to claims 7 and 8, characterized in that a certificate must be 

2 created for a given subject when the certificate expires during this period. 

1 10. Process according to any /of claims 6 through 9, characterized in that it creates 

2 each individual request from a corresponding multiple certification request recorded in the 
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storage means (7) relative to a set of pairs of keys for subjects belor^ging to a preset list or to a set 
of pairs of keys for subjects define 
certificates for the set in question. 



of pairs of keys for subjects defined by predetermined criteria, as well as to associated model 



11. Process according to claim 10, characterized in that it consists of searching in 
each of the multiple certification requests of the system for ^11 of the subjects in a condition such 
that a certificate must be created. 

12. Process according to any of claims 1 through 6, characterized in that each multiple 
request comprises an attribute relative to at least one execution date and in that said process 
consists of including in the search only the multiple requests whose expiration date has arrived. 

13. Process according to any of claims'^ 1 through 6, characterized in that it consists of 
performing the encoding of one or more extensions in accordance with one or more given rules 
and of entering the encoded extension or extensions into the individual certification request 
during the creation of the latter. / 

14. Process according to any ofi/claims 1 through 6, characterized in that it consists of 
changing the value of an attribute contair^pd in each of the individual requests in order to indicate 
its status. 

15. Computer system (1) tllat makes it possible to create and manage objects, 
particularly pairs of asymmetrical cirptographic keys and certificates associated with the pairs of 
keys, the pairs of keys and the certificates being intended for subjects managed by said system, 
characterized in that it comprises means for automating the creation and/or certification of at 
least one pair of keys for each supject managed by the system (1). 

16. Computer system (1) according to claim 15, characterized in that it comprises at 

least: 
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3 • a central management service (3) capable of creating, updamig and consulting the objects 

4 and the subjects managed by said system; / 

5 • a local registration authority (5) capable of handling the. creation and/or the certification 

6 of keys intended for an object; / 

7 • a central security base (7) containing the subjects and/objects managed by the system 

8 with which the local registration authority communicates; 

9 • a key generating center (8) capable of creating at l^t one pair of keys at the request of 
10 the local registration authority (5) with which it communicates; 

the system (1) having access to at least one certificatio/ authority (12) capable of creating a 
certificate at the request of the local registration authority (5). 

JIJ 17. Computer system according to either of claims 15 and 16, characterized in that it 

comprises a mechanism (6) for periodically waking up the local registration authority (5). 

^ J P 

18. Process for creating and managing sjonmetrical cryptographic keys, each key 
h2 being intended for a subject managed by a computer system (1), characterized in that it consists 

I °^ / 

'^4 • searching in storage means (7) foyat least one subject for which a symmetric key must be 

5 created; / 

6 • creating at least one individual request for creating a symmetric key for said subject; 

7 • transmitting a request corresjjpnding to said individual creation request to a key 

8 generating center (8), whichyissues a symmetric key in accordance with said request. 

/ 

1 19. Computer system (1) that makes it possible to create and manage objects, 

2 particularly symmetrical cryptographic keys, the keys being intended for subjects managed by 

/ 

3 said system, characterized in that it comprises means for automating the creation of at least one 

4 key for each subject managed^y^e system ( 1 ). 
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